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AMENDMENTS 

In the Claims 

No claims are allowed. 

Please cancel claims 6 and 7 without prejudice. 

Please amend claims 1-5, 10-16, and 18-20 as shown herein. 

No Claims are added. 

Claims 1-5 and 8-21 are pending and are listed following: 

1. (Currently Amended) A method of associating a permission set with 
a code assembly based on evidence characterized by different levels of trust, the 
method comprising: 

identifying re ceivin g" - at least a first condition for association with the 
permission set, wherein the first condition references w-a first element of 
evidence, wherein the first element of evidence is implicitly trustcd oondition ia 
associated with th e permi s sions se t and a level of trust associated with tho first 
e l e ment of e vid e nc e is ind e pendent of oth e r e vid e nc e and conditions ; 

identifying receiving at I caa t-a second condition for association with the 
permission set, wherein the second condition references ; aad-a second element of 
evidence, wherein the second clement of evidence is initially untmsted condition i s 
ossociatcd with tho p e rmi s sion set and a l e vel of trust associated with th e s e cond 
ele m e nt to dependent upon the -fi rst condition ; 

determining whether the first condition is satisfied by the first element of 
evidence; 
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determining whether the second clement of evidence should be trusted 
based on the first condition; 

determining whether the second condition is satisfied by the second 
element of evidence; and 

associating the permission set with the code assembly, if both the first 
condition and the second condition are satisfied. 

2. (Currently Amended) The method of claim 1 wherein the operation 
of receiving at-teast-a first condition comprises: 

receiving the first condition and the first element of evidence within a 
membership criterion. 

3. (Currently Amended) The method of claim 1 wherein the operation 
of receiving at loa s t -a second condition comprises: 

receiving the second condition ia -and the second element of evidence 
within a membership criterion. 

4. (Currently Amended) The method of claim 1 wherein the operation 
of receiving at least a first condition comprises: 

receiving the first condition in a membership criterion; and 
r e ading receiving the first element of evidence based on a reference 
included in the membership criterion. 
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5. (Currently Amended) The method of claim 1 wherein the operation 

of receiving at least a second condition comprises: 

receiving the second condition in a membership criterion; and 

receiving the second element of evidence based on a reference included in 

the membership criterion. 

6-7. (Cancelled) 

8. (Original) The method of claim 1 further comprising: 

generating a collection of code groups, each code group being associated 

with a membership criterion and a permission set, wherein the first condition and 

the second condition are received in the membership criterion associated with one 

of the code groups; and 

determining whether the code assembly is a member of the code group, 

based on the membership criterion. 



9. (Original) The method of claim 8 wherein the associating operation 

18 comprises: 

19 associating the permission set of the code group with the code assembly, if 

20 the code assembly is determined to be a member of the code group. 
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10. (Currently Amended) The method of claim 1 further comprising: 
receiving at least a third condition referencing a third element of evidence, 

wherein a lovol of trust associated with the third element is initially 

determining whether the third element of evidence should be trusted based 
on the second condition: and 

determining whether the third condition is satisfied by the third element of 
the evidence, wherein the associating operation comprises associating the 
permission set with the code assembly, if the first condition, the second condition, 
and the third condition are satisfied. 

11. (Currently Amended) A computer program product encoding a 
computer program for executing on a computer system a computer process for 
associating a permission set with a code assembly based on evidence characterized 
by different levels of trust, the computer process comprising: 

generating a collection of code groups, each code group being associated 
with a membership criterion and a permission set; 

receiving the membership criterion associated with one of the code groups, 
the membership criterion including at least a first condition and a second 
condition; 

referencing a first element of evidence in the first condition, wherein a - l e v e l 
o£- ftu s t associated with-the first element of evidence is trusted independent of 
other evidence and conditions; 
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referencing a second element of evidence in the second condition, wherein 
a level e ntru st associated with t he second element of evidence is d e p e ndent upon 
the first condition initiallv untrusted : 

determining whether the first condition is satisfied by the first element of 
evidence; 

determining whether the second element of evidence should be trusted 
based on the first condition; 

determining whether the second condition is satisfied by the second 
element of evidence; 

evaluating the first condition and the second condition using a logical 
operation to determine membership of the code assembly in the code group; and 

associating the permission set with the code assembly, if the code assembly 
is determined to be a member of the code group. 
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12. (Currently Amended) The computer program product of claim 11 
where in the computer process further comprises: 

receiving at least a third condition referencing a third element of evidence, 
wherein a love j — of- tru s t associated with the third element is initially 

determining whether the third element of evidence should be trusted based 
on the second condition: and 

determining whether the third condition is satisfied by the third element of 
evidence, wherein the associating operation comprises associating the permission 
set with the code assembly, if the first condition, the second condition, and the 
third condition are satisfied, 

13- (Currently Amended) A computer data signal embodied in a carrier 
wave by a computing system and encoding a computer program for executing a 
computer process associating a permission set with a code assembly based on 
evidence characterized by different levels of trust, the computer process 
comprising: 

receiving at - l e ast a first condition referencing a first element of evidence, 
wherein the first condition is associated with the permission set and the first 
clement of evidence is trusted a level of trust associated with th e firar g temrmt nf 
cvidence 4 s -independent of other evidence and conditions; 

receiving at least a second condition referencing the-a_second element of 
evidence, wherein the second condition is associated with the permission set and a 
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levei of trual associated wit k- t he second element is initially u ntrustedd epeadsftt 
tt pon th e first condition ; 

determining whether the first condition is satisfied by the first element of 
evidence; 

determining whether the second element should be trusted based on the fi rst 
condition; 

determining whether the second condition is satisfied by the second 
element of evidence; and 

associating the permission set with the code assembly, if both the fiist and 
second conditions are satisfied. 



14, (Currently Amended) A computer program storage medium 
readable by a computer system and encoding a computer program for executing a 
computer process associating a permission set with a code assembly based on 
evidence characterized by different levels of trust, the computer process 
comprising: 

receiving at least a first condition referencing a first element of evidence, 
wherein the first condition is associated with the permission set and a level of trust 
associated with -the first element of evidence is trustedjndependent of other 



evidence and conditions; 

receiving at least a second condition referencing a second element of 
evidence, wherein the second condition is associated with the permission set and a 
Iovq] of trust associated with t he second element is initially u ntrusted dependent 
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determining whether the first condition is satisfied by the first element of 
evidence; 

determining whether the second element of evidence should be trusted base 
don the first condition: 

determining whether the second condition is satisfied by the second 
element of evidence; and 

associating the permission set with the code assembly, if both the first and 
second conditions are satisfied. 

15, (Currently Amended) A policy manager for associating a 
permission set with a code assembly based on evidence characterized by different 
levels of trust, the policy manager comprising: 

a code collection generator generating a collection of code groups, each 
code group being associated with the membership criterion and a permission set; 

a membership evaluator determining if the code assembly is a member of 
the code group bv evaluating at least a first condition and a second condition 
associated with one of the code groups, the first condition referencing an 
implicitly trusted fiist element of evidence in the fiF & t^ondition, wherein a lcve ^of 
trust associated with th e first e l e ment of evidence is independent of other evidence 
and conditions ; the second condition referencing the -an initially untrusted second 
element of evidence, wherein a determination of trust associated with the second 
element o f evidence is based on the first condition s lev e l of trust associat e d with 
the s e cond olomont is dep e nd e nt upon the firs t-eonditiea; and 
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a permission set generator associating the permission set of the code group 
with the code assembly, if the code assembly is determined to be a member of the 
code group. 

16. (Currently Amended) The policy manager of claim 15 wherein the 
membership evaluator further receives at least a third condition referencing an 
initially untrusted third element of evidence, wherein the third condition is 
associated with the permission set and a determination of trust associated witha 
le v e l of trust associated with t he third elemen t of evidence is dependent upon the 
second condition, and determines whether the third condition is satisfied by the 
third element of evidence, and 

wherein the permission set generator associates the permission set with the 
code assembly, if the first condition, the second conditioned, and the third 
conditions are satisfied. 
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17. (Previously Presented) A computer program product encoding a 
computer program for executing on a computer system a computer process for 
associating a permission set with a code assembly based on evidence characterized 
by different levels of trust, the computer process comprising: 

receiving one or more first conditions, each first condition being associated 
with one or more first elements of evidence, wherein each first condition is 
associated with the permission set; 

determining whether each first condition is satisfied by an associated first 
element of evidence; 

generating an indication for each first condition that is satisfied; 

receiving a second condition associated with the permission set; 

determining whether the second condition is satisfied based on the 
indications, wherein a level of trust associated with the indications depends upon a 
first condition of the one or more first conditions; and 

associating the permission set with the code assembly, if both the first 
condition in the second condition are satisfied. 
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18. (Currently Amended) The computer program product of claim 17 
wherein the indication is associated with the first value associated with the first 
condition, wand the operation of determining whether the second condition is 
satisfied comprises; 

collecting the first value and additional values associated with other 
satisfied conditions to provide collected values; 

summing the collected values to provide a sotttt dsum ; and 

evaluating the sum against the threshold to determine whether the second 
condition is satisfied 

19- (Currently Amended) The computer program of claim 17 wherein at 
least one first element of evidence includes initially e ntru s ted u ntrusted evidence. 

20* (Currently Amended) The computer program of claims 17 wherein 
at least one indication includes financially entrustod i nitiallv untrusted evidence. 

21. (Original) The computer program of claim 17 wherein the computer 
process further comprises: 

generating an indication for each first condition that is not satisfied. 
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